@meshwhisper/sdk 0.1.0

package/dist/x3dh/index.js

@@ -0,0 +1,290 @@
+// ============================================================
+// MeshWhisper SDK — X3DH Key Exchange Module
+// Extended Triple Diffie-Hellman adapted for serverless P2P
+// ============================================================
+import { x25519, ed25519 } from '@noble/curves/ed25519';
+import { blake3 } from '@noble/hashes/blake3';
+// --- Constants ---
+/** Protocol version for serialized pre-key bundles. */
+const BUNDLE_VERSION = 0x01;
+/** Length of an X25519/Ed25519 public key in bytes. */
+const KEY_LENGTH = 32;
+/** Length of an Ed25519 signature in bytes. */
+const SIGNATURE_LENGTH = 64;
+/**
+ * Generates a full PreKeyBundle for distribution to peers.
+ *
+ * The bundle contains:
+ * - Identity key (Ed25519 public key from the provided key pair)
+ * - Signed pre-key (X25519, signed by the identity key)
+ * - One-time pre-key (X25519, single-use)
+ *
+ * The returned `signedPreKeyPair` and `oneTimePreKeyPair` private keys
+ * must be stored by the caller — they are required to complete X3DH on
+ * the responder side when a handshake arrives.
+ *
+ * @param identityKeyPair - Ed25519 identity key pair
+ * @returns Bundle (public) plus the key pairs (private keys must be stored)
+ */
+export function generatePreKeyBundle(identityKeyPair) {
+    // Generate signed pre-key (X25519)
+    const signedPreKeyPrivate = x25519.utils.randomSecretKey();
+    const signedPreKeyPublic = x25519.getPublicKey(signedPreKeyPrivate);
+    // Sign the signed pre-key's public key with the Ed25519 identity key
+    const signature = ed25519.sign(signedPreKeyPublic, identityKeyPair.privateKey);
+    // Generate one-time pre-key (X25519)
+    const oneTimePreKeyPrivate = x25519.utils.randomSecretKey();
+    const oneTimePreKeyPublic = x25519.getPublicKey(oneTimePreKeyPrivate);
+    return {
+        bundle: {
+            identityKey: identityKeyPair.publicKey,
+            signedPreKey: signedPreKeyPublic,
+            signedPreKeySignature: signature,
+            oneTimePreKey: oneTimePreKeyPublic,
+        },
+        signedPreKeyPair: {
+            publicKey: signedPreKeyPublic,
+            privateKey: signedPreKeyPrivate,
+        },
+        oneTimePreKeyPair: {
+            publicKey: oneTimePreKeyPublic,
+            privateKey: oneTimePreKeyPrivate,
+        },
+    };
+}
+/**
+ * Generates a batch of one-time pre-keys for replenishment.
+ *
+ * Returns full KeyPairs — the caller must store the private keys.
+ * Only public keys are distributed in the prekey bundle; private keys
+ * are required locally to complete X3DH when a matching handshake arrives.
+ *
+ * @param _identityKeyPair - Unused; kept for API consistency
+ * @param count - Number of one-time pre-keys to generate
+ * @returns Array of X25519 key pairs
+ */
+export function generateOneTimePreKeys(_identityKeyPair, count) {
+    if (count < 0 || !Number.isInteger(count)) {
+        throw new Error('count must be a non-negative integer');
+    }
+    const keys = [];
+    for (let i = 0; i < count; i++) {
+        const privateKey = x25519.utils.randomSecretKey();
+        keys.push({ privateKey, publicKey: x25519.getPublicKey(privateKey) });
+    }
+    return keys;
+}
+/**
+ * Performs the initiator side (Alice) of the X3DH key exchange.
+ *
+ * Executes 3 or 4 DH operations:
+ *   DH1 = DH(IK_A, SPK_B) — Alice's identity key with Bob's signed pre-key
+ *   DH2 = DH(EK_A, IK_B)  — Alice's ephemeral key with Bob's identity key
+ *   DH3 = DH(EK_A, SPK_B) — Alice's ephemeral key with Bob's signed pre-key
+ *   DH4 = DH(EK_A, OPK_B) — Alice's ephemeral key with Bob's one-time pre-key (optional)
+ *
+ * The shared secret is derived as BLAKE3(DH1 || DH2 || DH3 [|| DH4]).
+ *
+ * @param aliceIdentity - Alice's Ed25519 identity key pair
+ * @param bobPreKeyBundle - Bob's published PreKeyBundle
+ * @returns The derived shared secret, ephemeral public key, and OPK usage flag
+ * @throws If the pre-key bundle signature is invalid
+ */
+export function initiateKeyExchange(aliceIdentity, bobPreKeyBundle) {
+    // Verify Bob's signed pre-key before proceeding
+    if (!verifyPreKeyBundle(bobPreKeyBundle)) {
+        throw new Error('Invalid pre-key bundle: signed pre-key signature verification failed');
+    }
+    // Convert Alice's Ed25519 identity key to X25519 for DH operations
+    const aliceIdentityX25519Private = ed25519.utils.toMontgomerySecret(aliceIdentity.privateKey);
+    // Convert Bob's Ed25519 identity public key to X25519
+    const bobIdentityX25519Public = ed25519.utils.toMontgomery(bobPreKeyBundle.identityKey);
+    // Generate Alice's ephemeral X25519 key pair
+    const ephemeralPrivate = x25519.utils.randomSecretKey();
+    const ephemeralPublic = x25519.getPublicKey(ephemeralPrivate);
+    // DH1: DH(IK_A, SPK_B)
+    const dh1 = x25519.getSharedSecret(aliceIdentityX25519Private, bobPreKeyBundle.signedPreKey);
+    // DH2: DH(EK_A, IK_B)
+    const dh2 = x25519.getSharedSecret(ephemeralPrivate, bobIdentityX25519Public);
+    // DH3: DH(EK_A, SPK_B)
+    const dh3 = x25519.getSharedSecret(ephemeralPrivate, bobPreKeyBundle.signedPreKey);
+    // DH4: DH(EK_A, OPK_B) — optional
+    const usedOneTimePreKey = bobPreKeyBundle.oneTimePreKey != null;
+    let dhConcat;
+    if (usedOneTimePreKey) {
+        const dh4 = x25519.getSharedSecret(ephemeralPrivate, bobPreKeyBundle.oneTimePreKey);
+        dhConcat = concatBytes(dh1, dh2, dh3, dh4);
+    }
+    else {
+        dhConcat = concatBytes(dh1, dh2, dh3);
+    }
+    // Derive shared secret via BLAKE3
+    const sharedSecret = blake3(dhConcat);
+    return {
+        sharedSecret,
+        ephemeralPublicKey: ephemeralPublic,
+        usedOneTimePreKey,
+    };
+}
+// --- Key Exchange: Responder (Bob) ---
+/**
+ * Performs the responder side (Bob) of the X3DH key exchange.
+ *
+ * Mirrors the initiator's DH operations to derive the same shared secret:
+ *   DH1 = DH(SPK_B, IK_A) — Bob's signed pre-key with Alice's identity key
+ *   DH2 = DH(IK_B, EK_A)  — Bob's identity key with Alice's ephemeral key
+ *   DH3 = DH(SPK_B, EK_A) — Bob's signed pre-key with Alice's ephemeral key
+ *   DH4 = DH(OPK_B, EK_A) — Bob's one-time pre-key with Alice's ephemeral key (optional)
+ *
+ * @param bobIdentity - Bob's Ed25519 identity key pair
+ * @param bobSignedPreKey - Bob's X25519 signed pre-key pair
+ * @param bobOneTimePreKey - Bob's X25519 one-time pre-key pair (null if not used)
+ * @param aliceIdentityKey - Alice's Ed25519 identity public key
+ * @param aliceEphemeralKey - Alice's X25519 ephemeral public key
+ * @returns The derived shared secret (same as Alice's if inputs are correct)
+ */
+export function completeKeyExchange(bobIdentity, bobSignedPreKey, bobOneTimePreKey, aliceIdentityKey, aliceEphemeralKey) {
+    // Convert Alice's Ed25519 identity public key to X25519
+    const aliceIdentityX25519Public = ed25519.utils.toMontgomery(aliceIdentityKey);
+    // Convert Bob's Ed25519 identity key to X25519
+    const bobIdentityX25519Private = ed25519.utils.toMontgomerySecret(bobIdentity.privateKey);
+    // DH1: DH(SPK_B, IK_A) — mirrors Alice's DH(IK_A, SPK_B)
+    const dh1 = x25519.getSharedSecret(bobSignedPreKey.privateKey, aliceIdentityX25519Public);
+    // DH2: DH(IK_B, EK_A) — mirrors Alice's DH(EK_A, IK_B)
+    const dh2 = x25519.getSharedSecret(bobIdentityX25519Private, aliceEphemeralKey);
+    // DH3: DH(SPK_B, EK_A) — mirrors Alice's DH(EK_A, SPK_B)
+    const dh3 = x25519.getSharedSecret(bobSignedPreKey.privateKey, aliceEphemeralKey);
+    // DH4: DH(OPK_B, EK_A) — optional
+    let dhConcat;
+    if (bobOneTimePreKey != null) {
+        const dh4 = x25519.getSharedSecret(bobOneTimePreKey.privateKey, aliceEphemeralKey);
+        dhConcat = concatBytes(dh1, dh2, dh3, dh4);
+    }
+    else {
+        dhConcat = concatBytes(dh1, dh2, dh3);
+    }
+    // Derive shared secret via BLAKE3
+    return blake3(dhConcat);
+}
+// --- PreKey Bundle Verification ---
+/**
+ * Verifies the signed pre-key signature in a PreKeyBundle.
+ *
+ * Checks that the signedPreKey was signed by the holder of the identityKey
+ * using Ed25519.
+ *
+ * @param bundle - The PreKeyBundle to verify
+ * @returns true if the signature is valid, false otherwise
+ */
+export function verifyPreKeyBundle(bundle) {
+    try {
+        return ed25519.verify(bundle.signedPreKeySignature, bundle.signedPreKey, bundle.identityKey);
+    }
+    catch {
+        return false;
+    }
+}
+// --- Serialization ---
+/**
+ * Serializes a PreKeyBundle to a compact binary format for gossip distribution.
+ *
+ * Wire format:
+ *   [version: 1 byte]
+ *   [flags: 1 byte]       — bit 0: hasOneTimePreKey
+ *   [identityKey: 32 bytes]
+ *   [signedPreKey: 32 bytes]
+ *   [signedPreKeySignature: 64 bytes]
+ *   [oneTimePreKey: 32 bytes]  — optional, present if flags bit 0 is set
+ *
+ * Total: 130 bytes without OPK, 162 bytes with OPK.
+ *
+ * @param bundle - The PreKeyBundle to serialize
+ * @returns Serialized binary representation
+ */
+export function serializePreKeyBundle(bundle) {
+    const hasOPK = bundle.oneTimePreKey != null;
+    const flags = hasOPK ? 0x01 : 0x00;
+    const totalLength = 1 + 1 + KEY_LENGTH + KEY_LENGTH + SIGNATURE_LENGTH + (hasOPK ? KEY_LENGTH : 0);
+    const data = new Uint8Array(totalLength);
+    let offset = 0;
+    // Version
+    data[offset++] = BUNDLE_VERSION;
+    // Flags
+    data[offset++] = flags;
+    // Identity key
+    data.set(bundle.identityKey, offset);
+    offset += KEY_LENGTH;
+    // Signed pre-key
+    data.set(bundle.signedPreKey, offset);
+    offset += KEY_LENGTH;
+    // Signed pre-key signature
+    data.set(bundle.signedPreKeySignature, offset);
+    offset += SIGNATURE_LENGTH;
+    // One-time pre-key (optional)
+    if (hasOPK) {
+        data.set(bundle.oneTimePreKey, offset);
+    }
+    return data;
+}
+/**
+ * Deserializes a PreKeyBundle from its binary representation.
+ *
+ * @param data - Serialized PreKeyBundle bytes
+ * @returns The deserialized PreKeyBundle
+ * @throws If the data is malformed or has an unsupported version
+ */
+export function deserializePreKeyBundle(data) {
+    if (data.length < 2) {
+        throw new Error('PreKeyBundle data too short: missing header');
+    }
+    let offset = 0;
+    // Version
+    const version = data[offset++];
+    if (version !== BUNDLE_VERSION) {
+        throw new Error(`Unsupported PreKeyBundle version: ${version}`);
+    }
+    // Flags
+    const flags = data[offset++];
+    const hasOPK = (flags & 0x01) !== 0;
+    const expectedLength = 1 + 1 + KEY_LENGTH + KEY_LENGTH + SIGNATURE_LENGTH + (hasOPK ? KEY_LENGTH : 0);
+    if (data.length < expectedLength) {
+        throw new Error(`PreKeyBundle data too short: expected ${expectedLength} bytes, got ${data.length}`);
+    }
+    // Identity key
+    const identityKey = data.slice(offset, offset + KEY_LENGTH);
+    offset += KEY_LENGTH;
+    // Signed pre-key
+    const signedPreKey = data.slice(offset, offset + KEY_LENGTH);
+    offset += KEY_LENGTH;
+    // Signed pre-key signature
+    const signedPreKeySignature = data.slice(offset, offset + SIGNATURE_LENGTH);
+    offset += SIGNATURE_LENGTH;
+    // One-time pre-key (optional)
+    const oneTimePreKey = hasOPK
+        ? data.slice(offset, offset + KEY_LENGTH)
+        : undefined;
+    return {
+        identityKey,
+        signedPreKey,
+        signedPreKeySignature,
+        oneTimePreKey,
+    };
+}
+// --- Utility ---
+/**
+ * Concatenates multiple Uint8Arrays into a single Uint8Array.
+ */
+function concatBytes(...arrays) {
+    let totalLength = 0;
+    for (const arr of arrays) {
+        totalLength += arr.length;
+    }
+    const result = new Uint8Array(totalLength);
+    let offset = 0;
+    for (const arr of arrays) {
+        result.set(arr, offset);
+        offset += arr.length;
+    }
+    return result;
+}
+//# sourceMappingURL=index.js.map

package/dist/x3dh/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/x3dh/index.ts"],"names":[],"mappings":"AAAA,+DAA+D;AAC/D,6CAA6C;AAC7C,4DAA4D;AAC5D,+DAA+D;AAE/D,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,uBAAuB,CAAC;AACxD,OAAO,EAAE,MAAM,EAAE,MAAM,sBAAsB,CAAC;AAG9C,oBAAoB;AAEpB,uDAAuD;AACvD,MAAM,cAAc,GAAG,IAAI,CAAC;AAE5B,uDAAuD;AACvD,MAAM,UAAU,GAAG,EAAE,CAAC;AAEtB,+CAA+C;AAC/C,MAAM,gBAAgB,GAAG,EAAE,CAAC;AAkB5B;;;;;;;;;;;;;;GAcG;AACH,MAAM,UAAU,oBAAoB,CAAC,eAAwB;IAC3D,mCAAmC;IACnC,MAAM,mBAAmB,GAAG,MAAM,CAAC,KAAK,CAAC,eAAe,EAAE,CAAC;IAC3D,MAAM,kBAAkB,GAAG,MAAM,CAAC,YAAY,CAAC,mBAAmB,CAAC,CAAC;IAEpE,qEAAqE;IACrE,MAAM,SAAS,GAAG,OAAO,CAAC,IAAI,CAAC,kBAAkB,EAAE,eAAe,CAAC,UAAU,CAAC,CAAC;IAE/E,qCAAqC;IACrC,MAAM,oBAAoB,GAAG,MAAM,CAAC,KAAK,CAAC,eAAe,EAAE,CAAC;IAC5D,MAAM,mBAAmB,GAAG,MAAM,CAAC,YAAY,CAAC,oBAAoB,CAAC,CAAC;IAEtE,OAAO;QACL,MAAM,EAAE;YACN,WAAW,EAAE,eAAe,CAAC,SAAS;YACtC,YAAY,EAAE,kBAAkB;YAChC,qBAAqB,EAAE,SAAS;YAChC,aAAa,EAAE,mBAAmB;SACnC;QACD,gBAAgB,EAAE;YAChB,SAAS,EAAE,kBAAkB;YAC7B,UAAU,EAAE,mBAAmB;SAChC;QACD,iBAAiB,EAAE;YACjB,SAAS,EAAE,mBAAmB;YAC9B,UAAU,EAAE,oBAAoB;SACjC;KACF,CAAC;AACJ,CAAC;AAED;;;;;;;;;;GAUG;AACH,MAAM,UAAU,sBAAsB,CACpC,gBAAyB,EACzB,KAAa;IAEb,IAAI,KAAK,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,KAAK,CAAC,EAAE,CAAC;QAC1C,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;IAC1D,CAAC;IAED,MAAM,IAAI,GAAc,EAAE,CAAC;IAC3B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,EAAE,CAAC,EAAE,EAAE,CAAC;QAC/B,MAAM,UAAU,GAAG,MAAM,CAAC,KAAK,CAAC,eAAe,EAAE,CAAC;QAClD,IAAI,CAAC,IAAI,CAAC,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,CAAC,YAAY,CAAC,UAAU,CAAC,EAAE,CAAC,CAAC;IACxE,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAaD;;;;;;;;;;;;;;;GAeG;AACH,MAAM,UAAU,mBAAmB,CACjC,aAAsB,EACtB,eAA6B;IAE7B,gDAAgD;IAChD,IAAI,CAAC,kBAAkB,CAAC,eAAe,CAAC,EAAE,CAAC;QACzC,MAAM,IAAI,KAAK,CAAC,sEAAsE,CAAC,CAAC;IAC1F,CAAC;IAED,mEAAmE;IACnE,MAAM,0BAA0B,GAAG,OAAO,CAAC,KAAK,CAAC,kBAAkB,CAAC,aAAa,CAAC,UAAU,CAAC,CAAC;IAE9F,sDAAsD;IACtD,MAAM,uBAAuB,GAAG,OAAO,CAAC,KAAK,CAAC,YAAY,CAAC,eAAe,CAAC,WAAW,CAAC,CAAC;IAExF,6CAA6C;IAC7C,MAAM,gBAAgB,GAAG,MAAM,CAAC,KAAK,CAAC,eAAe,EAAE,CAAC;IACxD,MAAM,eAAe,GAAG,MAAM,CAAC,YAAY,CAAC,gBAAgB,CAAC,CAAC;IAE9D,uBAAuB;IACvB,MAAM,GAAG,GAAG,MAAM,CAAC,eAAe,CAAC,0BAA0B,EAAE,eAAe,CAAC,YAAY,CAAC,CAAC;IAE7F,sBAAsB;IACtB,MAAM,GAAG,GAAG,MAAM,CAAC,eAAe,CAAC,gBAAgB,EAAE,uBAAuB,CAAC,CAAC;IAE9E,uBAAuB;IACvB,MAAM,GAAG,GAAG,MAAM,CAAC,eAAe,CAAC,gBAAgB,EAAE,eAAe,CAAC,YAAY,CAAC,CAAC;IAEnF,kCAAkC;IAClC,MAAM,iBAAiB,GAAG,eAAe,CAAC,aAAa,IAAI,IAAI,CAAC;IAChE,IAAI,QAAoB,CAAC;IAEzB,IAAI,iBAAiB,EAAE,CAAC;QACtB,MAAM,GAAG,GAAG,MAAM,CAAC,eAAe,CAAC,gBAAgB,EAAE,eAAe,CAAC,aAAc,CAAC,CAAC;QACrF,QAAQ,GAAG,WAAW,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC;IAC7C,CAAC;SAAM,CAAC;QACN,QAAQ,GAAG,WAAW,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC;IACxC,CAAC;IAED,kCAAkC;IAClC,MAAM,YAAY,GAAG,MAAM,CAAC,QAAQ,CAAC,CAAC;IAEtC,OAAO;QACL,YAAY;QACZ,kBAAkB,EAAE,eAAe;QACnC,iBAAiB;KAClB,CAAC;AACJ,CAAC;AAED,wCAAwC;AAExC;;;;;;;;;;;;;;;GAeG;AACH,MAAM,UAAU,mBAAmB,CACjC,WAAoB,EACpB,eAAwB,EACxB,gBAAgC,EAChC,gBAA4B,EAC5B,iBAA6B;IAE7B,wDAAwD;IACxD,MAAM,yBAAyB,GAAG,OAAO,CAAC,KAAK,CAAC,YAAY,CAAC,gBAAgB,CAAC,CAAC;IAE/E,+CAA+C;IAC/C,MAAM,wBAAwB,GAAG,OAAO,CAAC,KAAK,CAAC,kBAAkB,CAAC,WAAW,CAAC,UAAU,CAAC,CAAC;IAE1F,yDAAyD;IACzD,MAAM,GAAG,GAAG,MAAM,CAAC,eAAe,CAAC,eAAe,CAAC,UAAU,EAAE,yBAAyB,CAAC,CAAC;IAE1F,uDAAuD;IACvD,MAAM,GAAG,GAAG,MAAM,CAAC,eAAe,CAAC,wBAAwB,EAAE,iBAAiB,CAAC,CAAC;IAEhF,yDAAyD;IACzD,MAAM,GAAG,GAAG,MAAM,CAAC,eAAe,CAAC,eAAe,CAAC,UAAU,EAAE,iBAAiB,CAAC,CAAC;IAElF,kCAAkC;IAClC,IAAI,QAAoB,CAAC;IAEzB,IAAI,gBAAgB,IAAI,IAAI,EAAE,CAAC;QAC7B,MAAM,GAAG,GAAG,MAAM,CAAC,eAAe,CAAC,gBAAgB,CAAC,UAAU,EAAE,iBAAiB,CAAC,CAAC;QACnF,QAAQ,GAAG,WAAW,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC;IAC7C,CAAC;SAAM,CAAC;QACN,QAAQ,GAAG,WAAW,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC;IACxC,CAAC;IAED,kCAAkC;IAClC,OAAO,MAAM,CAAC,QAAQ,CAAC,CAAC;AAC1B,CAAC;AAED,qCAAqC;AAErC;;;;;;;;GAQG;AACH,MAAM,UAAU,kBAAkB,CAAC,MAAoB;IACrD,IAAI,CAAC;QACH,OAAO,OAAO,CAAC,MAAM,CACnB,MAAM,CAAC,qBAAqB,EAC5B,MAAM,CAAC,YAAY,EACnB,MAAM,CAAC,WAAW,CACnB,CAAC;IACJ,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED,wBAAwB;AAExB;;;;;;;;;;;;;;;GAeG;AACH,MAAM,UAAU,qBAAqB,CAAC,MAAoB;IACxD,MAAM,MAAM,GAAG,MAAM,CAAC,aAAa,IAAI,IAAI,CAAC;IAC5C,MAAM,KAAK,GAAG,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC;IACnC,MAAM,WAAW,GAAG,CAAC,GAAG,CAAC,GAAG,UAAU,GAAG,UAAU,GAAG,gBAAgB,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IAEnG,MAAM,IAAI,GAAG,IAAI,UAAU,CAAC,WAAW,CAAC,CAAC;IACzC,IAAI,MAAM,GAAG,CAAC,CAAC;IAEf,UAAU;IACV,IAAI,CAAC,MAAM,EAAE,CAAC,GAAG,cAAc,CAAC;IAEhC,QAAQ;IACR,IAAI,CAAC,MAAM,EAAE,CAAC,GAAG,KAAK,CAAC;IAEvB,eAAe;IACf,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;IACrC,MAAM,IAAI,UAAU,CAAC;IAErB,iBAAiB;IACjB,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,YAAY,EAAE,MAAM,CAAC,CAAC;IACtC,MAAM,IAAI,UAAU,CAAC;IAErB,2BAA2B;IAC3B,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,qBAAqB,EAAE,MAAM,CAAC,CAAC;IAC/C,MAAM,IAAI,gBAAgB,CAAC;IAE3B,8BAA8B;IAC9B,IAAI,MAAM,EAAE,CAAC;QACX,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,aAAc,EAAE,MAAM,CAAC,CAAC;IAC1C,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,uBAAuB,CAAC,IAAgB;IACtD,IAAI,IAAI,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACpB,MAAM,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAC;IACjE,CAAC;IAED,IAAI,MAAM,GAAG,CAAC,CAAC;IAEf,UAAU;IACV,MAAM,OAAO,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC,CAAC;IAC/B,IAAI,OAAO,KAAK,cAAc,EAAE,CAAC;QAC/B,MAAM,IAAI,KAAK,CAAC,qCAAqC,OAAO,EAAE,CAAC,CAAC;IAClE,CAAC;IAED,QAAQ;IACR,MAAM,KAAK,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC,CAAC;IAC7B,MAAM,MAAM,GAAG,CAAC,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC;IAEpC,MAAM,cAAc,GAAG,CAAC,GAAG,CAAC,GAAG,UAAU,GAAG,UAAU,GAAG,gBAAgB,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IACtG,IAAI,IAAI,CAAC,MAAM,GAAG,cAAc,EAAE,CAAC;QACjC,MAAM,IAAI,KAAK,CACb,yCAAyC,cAAc,eAAe,IAAI,CAAC,MAAM,EAAE,CACpF,CAAC;IACJ,CAAC;IAED,eAAe;IACf,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,MAAM,GAAG,UAAU,CAAC,CAAC;IAC5D,MAAM,IAAI,UAAU,CAAC;IAErB,iBAAiB;IACjB,MAAM,YAAY,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,MAAM,GAAG,UAAU,CAAC,CAAC;IAC7D,MAAM,IAAI,UAAU,CAAC;IAErB,2BAA2B;IAC3B,MAAM,qBAAqB,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,MAAM,GAAG,gBAAgB,CAAC,CAAC;IAC5E,MAAM,IAAI,gBAAgB,CAAC;IAE3B,8BAA8B;IAC9B,MAAM,aAAa,GAAG,MAAM;QAC1B,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,MAAM,GAAG,UAAU,CAAC;QACzC,CAAC,CAAC,SAAS,CAAC;IAEd,OAAO;QACL,WAAW;QACX,YAAY;QACZ,qBAAqB;QACrB,aAAa;KACd,CAAC;AACJ,CAAC;AAED,kBAAkB;AAElB;;GAEG;AACH,SAAS,WAAW,CAAC,GAAG,MAAoB;IAC1C,IAAI,WAAW,GAAG,CAAC,CAAC;IACpB,KAAK,MAAM,GAAG,IAAI,MAAM,EAAE,CAAC;QACzB,WAAW,IAAI,GAAG,CAAC,MAAM,CAAC;IAC5B,CAAC;IAED,MAAM,MAAM,GAAG,IAAI,UAAU,CAAC,WAAW,CAAC,CAAC;IAC3C,IAAI,MAAM,GAAG,CAAC,CAAC;IACf,KAAK,MAAM,GAAG,IAAI,MAAM,EAAE,CAAC;QACzB,MAAM,CAAC,GAAG,CAAC,GAAG,EAAE,MAAM,CAAC,CAAC;QACxB,MAAM,IAAI,GAAG,CAAC,MAAM,CAAC;IACvB,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/package.json

@@ -0,0 +1,59 @@
+{
+  "name": "@meshwhisper/sdk",
+  "version": "0.1.0",
+  "description": "Serverless P2P E2EE Messaging SDK",
+  "type": "module",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "default": "./dist/index.js"
+    },
+    "./browser": {
+      "types": "./dist/browser/index.d.ts",
+      "default": "./dist/browser/index.js"
+    },
+    "./node": {
+      "types": "./dist/node/index.d.ts",
+      "default": "./dist/node/index.js"
+    },
+    "./persistence/idb": {
+      "types": "./dist/persistence/idb-storage.d.ts",
+      "default": "./dist/persistence/idb-storage.js"
+    },
+    "./persistence/node": {
+      "types": "./dist/persistence/node-storage.d.ts",
+      "default": "./dist/persistence/node-storage.js"
+    }
+  },
+  "files": ["dist", "src"],
+  "publishConfig": { "access": "public" },
+  "scripts": {
+    "prepublishOnly": "npm run build",
+    "build": "tsc",
+    "test": "vitest run",
+    "test:watch": "vitest",
+    "lint": "eslint src/",
+    "demo": "npx tsx demo/server.ts",
+    "demo:alice": "npx tsx demo/server.ts 3001 Alice",
+    "demo:bob": "npx tsx demo/server.ts 3002 Bob"
+  },
+  "dependencies": {
+    "@noble/ciphers": "^1.2.0",
+    "@noble/curves": "^1.8.0",
+    "@noble/hashes": "^1.7.0",
+    "lz4js": "^0.2.0"
+  },
+  "optionalDependencies": {
+    "ws": "^8.18.0"
+  },
+  "devDependencies": {
+    "@types/node": "^22.0.0",
+    "@types/ws": "^8.5.0",
+    "tsx": "^4.21.0",
+    "typescript": "^5.7.0",
+    "vitest": "^3.0.0"
+  },
+  "license": "MIT"
+}

package/src/browser/index.ts

@@ -0,0 +1,19 @@
+// ============================================================
+// MeshWhisper SDK — Browser / PWA entry point
+// @meshwhisper/sdk/browser
+//
+// Re-exports everything from the main SDK plus browser-specific
+// storage and transport implementations.
+//
+// Usage:
+//   import { MeshWhisper, IDBStorage, BrowserTransport } from '@meshwhisper/sdk/browser';
+//
+// When you call MeshWhisper.init() in a browser environment, the SDK
+// detects window/indexedDB and auto-selects IDBStorage + BrowserTransport.
+// You only need to import from this path if you want to reference the
+// classes explicitly (e.g. to construct IDBStorage with a custom namespace).
+// ============================================================
+
+export * from '../index.js';
+export { IDBStorage } from '../persistence/idb-storage.js';
+export { BrowserTransport } from '../transport/browser/index.js';